File tree Expand file tree Collapse file tree 1 file changed +6
-6
lines changed
content/vault/v1.9.x/content/api-docs/auth Expand file tree Collapse file tree 1 file changed +6
-6
lines changed Original file line number Diff line number Diff line change @@ -60,12 +60,12 @@ This endpoint configures the LDAP auth method.
6060 username passed when authenticating. Examples: ` sAMAccountName ` , ` cn ` , ` uid `
6161- ` discoverdn ` ` (bool: false) ` – Use anonymous bind to discover the bind DN of a
6262 user.
63- - ` deny_null_bind ` ` (bool: true) ` – By default, Vault will prevent LDAP authentication
64- attempts where the user provides an empty password (null binds). Setting this parameter
65- to false allows Vault to support LDAP anonymous bind operations, which may be required
66- for certain directory configurations that use anonymous search or discovery. When set to
67- false, Vault defers the handling of empty-password authentication attempts to the LDAP
68- server .
63+ - ` deny_null_bind ` ` (bool: true) ` – By default, Vault prevents LDAP authentication
64+ attempts when the user provides an empty password (null binds). Setting
65+ ` deny_null_bind ` to ` false ` tells Vault to defer the handling of empty-password
66+ authentication attempts to the LDAP server. You may want to allow LDAP
67+ anonymous bind operations for directory configurations using anonymous search
68+ or discovery .
6969- ` upndomain ` ` (string: "") ` – The userPrincipalDomain used to construct the UPN
7070 string for the authenticating user. The constructed UPN will appear as
7171 ` [username]@UPNDomain ` . Example: ` example.com ` , which will cause vault to bind
You can’t perform that action at this time.
0 commit comments